Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
File: HDRPEVl1lIgoU6eVgd0r94nusx8.mft (raw, json)
Hash identifier: ry57G7bQukRwRXUzHZ9cC0XTvJUaVxcBXFaoaOUOIb4=
Subject key identifier: B8:88:DB:D5:13:62:7D:88:A8:C0:85:1D:00:B9:AC:B7:C6:A8:6C:BB
Authority key identifier: 1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
Certificate issuer: /CN=1c344f11597594882853a79581dd2bf789eeb31f
Certificate serial: 0198D5BBA558569BDD9BABFE995A98CB00CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
Manifest number: 141D
Signing time: Sat 23 Aug 2025 07:01:41 +0000
Manifest this update: Sat 23 Aug 2025 07:01:41 +0000
Manifest next update: Sun 24 Aug 2025 07:01:41 +0000
Files and hashes: 1: HDRPEVl1lIgoU6eVgd0r94nusx8.crl (hash: B35+OtL/CXqetXw3gKgaxXfsuMUM4WqsuGIIdrvXrj0=)
2: OLwYzj-fOtPupeVPjMakvIdCk14.roa (hash: w82sMMgD2hDeR96YGrYPpR7eSx7BTygOkVtPfhR7sSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:a5:58:56:9b:dd:9b:ab:fe:99:5a:98:cb:00:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c344f11597594882853a79581dd2bf789eeb31f
Validity
Not Before: Aug 23 07:01:41 2025 GMT
Not After : Aug 24 07:01:41 2025 GMT
Subject: CN=b888dbd513627d88a8c0851d00b9acb7c6a86cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:44:60:4f:29:2a:00:1a:d3:cf:cc:59:3b:54:
64:85:da:43:3d:0b:3e:0d:7e:51:40:a0:32:6b:5c:
e3:7d:5b:39:9c:4c:41:c9:8c:7c:dd:3c:1f:66:28:
e7:ab:f5:f1:65:27:2b:ba:f5:7b:38:d6:35:08:e3:
49:0d:52:db:ad:a0:18:42:92:40:c2:7b:72:6c:f4:
5f:6f:d5:5e:a4:fc:7c:b4:2b:61:f7:ee:76:10:26:
34:94:e9:93:a8:c9:be:ad:40:05:29:a2:74:b4:3f:
14:17:9f:87:ec:e1:5b:bf:9c:23:99:1e:3f:3d:96:
24:7f:97:32:88:9e:63:af:f0:e8:42:72:e5:c8:d1:
cb:87:4b:ab:fa:00:b6:ab:c9:cc:ac:f2:80:01:32:
10:ef:14:9f:cc:3a:2a:0b:b9:56:19:e9:c3:e3:3d:
00:35:25:28:ec:84:a1:03:92:8e:ad:b7:0c:bf:f9:
f5:e4:26:6d:90:b4:b5:f0:c7:f1:ba:18:46:b1:7a:
7f:9d:fb:9b:b7:3b:97:7f:8e:3c:25:03:28:d0:74:
b4:86:3a:8e:27:c3:dc:96:1a:1f:7f:25:79:a9:33:
cf:a6:01:32:8f:68:9b:76:cb:0d:32:04:26:89:79:
cb:f4:8e:6f:39:4b:1d:ab:91:74:74:2e:e4:82:27:
a4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:88:DB:D5:13:62:7D:88:A8:C0:85:1D:00:B9:AC:B7:C6:A8:6C:BB
X509v3 Authority Key Identifier:
keyid:1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:f5:b8:1f:b1:43:6a:18:57:3a:11:15:90:b7:88:1e:c5:d4:
78:98:a5:fc:43:65:96:9e:56:0b:71:fd:6a:25:71:53:eb:46:
0f:64:62:1f:fe:49:32:48:05:a5:bf:85:d0:f0:05:65:fc:85:
b0:12:ae:c4:dd:9b:5c:ec:1f:58:6e:44:96:26:66:15:76:ef:
f7:67:0c:94:63:9f:a1:2d:a8:26:9f:70:36:a7:4a:3a:cf:ce:
20:22:c4:25:78:8b:d6:b6:6c:e0:94:94:5e:ac:a3:25:12:7d:
08:c6:38:0f:d5:15:5c:16:00:75:50:55:63:3a:7d:1b:d1:c4:
94:0b:10:18:f0:7a:d9:af:e8:62:a1:7b:42:d2:7f:11:1a:44:
64:53:ae:1e:8c:95:94:cf:39:4a:69:6c:f4:db:9b:97:de:d0:
5f:1e:ba:64:1c:d9:15:27:68:e8:6c:b8:ee:16:c1:c4:61:42:
8b:d6:7e:c9:cd:96:d6:c0:6d:15:6a:40:d9:8e:cc:90:e3:31:
22:9c:15:ee:7b:7e:86:5e:4d:af:41:aa:d1:8e:b5:9b:2e:2f:
16:d1:ab:74:3e:97:52:6d:8b:cd:a5:6e:77:6d:91:7e:66:45:
58:67:92:11:d8:be:e5:0a:65:36:39:18:81:b1:79:bc:ae:36:
43:b5:ca:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:45:54 2025 by rpki-client